The­men

Die unten stehende Liste zeigt mögliche Themen. Es ist ebenso möglich sich ein passendes Thema selbst zu suchen. Dieses muss vor der Vorbesprechung kurz und per Mail vorgestellt werden.

Background

• Android System-Structure + Android App-Structure
  
  • Dalvik, ART (Android Runtime)
    
    • TaintDroid [https://dl.acm.org/citation.cfm?id=1924971] vs. TaintMan [http://ieeexplore.ieee.org/document/8010886/]
• Communication between Components and Apps
  
  • Intents
    
    • Epicc [https://dl.acm.org/citation.cfm?id=2534813]
    • IC3 [https://dl.acm.org/citation.cfm?id=2818767]
  • Permissions
    
    • PScout [https://dl.acm.org/citation.cfm?id=2382222]

Security

• IT/Computer Security, Information Security
  
  • CIA: Confidentiality, Integrity, Availability [http://ieeexplore.ieee.org/abstract/document/5396322/]
• Android security mechanisms and attack surfaces [https://source.android.com/security/reports/Google_Android_Security_2016_Report_Final.pdf]

Analysis

• Data-flow analysis [http://www.springer.com/de/book/9783540654100, https://katalog.ub.uni-paderborn.de/local/records/000892154]
  
  • Static/Dynamic
  • Sensitivity
• Android specific data-flow analysis [https://dl.acm.org/citation.cfm?id=2594299]
  
  • Lifecycle, other callbacks
  • Dummy main
• Interprocedural data-flow analysis [http://sable.github.io/heros/]
  
  • Call-Strings, IDE, IFDS
• Inter component/app data-flow analysis [http://ieeexplore.ieee.org/document/7194581/]

Tools

• Soot: Analysis framework [https://dl.acm.org/citation.cfm?id=782008]
  
  • IR (Jimple)
• Analysis Tools
  
  • FlowDroid [https://dl.acm.org/citation.cfm?id=2594299]
  • IC3 [https://dl.acm.org/citation.cfm?id=2818767]
  • IccTA [http://ieeexplore.ieee.org/document/7194581/]
• Benchmarks
  
  • DroidBench [https://dl.acm.org/citation.cfm?id=2594299]